Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/1-fzU0PzAZKH4Yy_EZCFdFb08SLA.roa
File: 1-fzU0PzAZKH4Yy_EZCFdFb08SLA.roa (raw, json)
Hash identifier: hUEcUJYo4fq3ftf7HTm7BRfpk1a3633E5joz3R8pE6M=
Subject key identifier: F9:FC:D4:D0:FC:C0:64:A1:F8:63:2F:C4:64:21:5D:15:BD:3C:48:B0
Certificate issuer: /CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Certificate serial: 188D07DF
Authority key identifier: F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/1-fzU0PzAZKH4Yy_EZCFdFb08SLA.roa
Signing time: Sat 01 Jan 2022 14:01:17 +0000
ROA not before: Sat 01 Jan 2022 14:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 91.233.52.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411895775 (0x188d07df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Validity
Not Before: Jan 1 14:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9fcd4d0fcc064a1f8632fc464215d15bd3c48b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:65:dc:39:64:04:85:d1:37:a8:93:49:c6:88:
5c:cf:2c:4e:37:58:82:0b:89:4d:18:5d:d7:a6:f8:
0c:6e:93:50:4e:93:db:cf:24:23:cc:55:0b:d2:4b:
94:07:77:24:87:ef:8d:b6:d6:89:03:09:95:13:be:
f7:4b:74:12:f3:f3:6a:26:17:6a:2c:2a:85:46:67:
05:98:f5:4f:82:a1:bc:46:38:3b:d4:f0:f3:2e:72:
c6:42:c8:26:56:d1:a2:33:25:f7:a5:04:62:cd:59:
02:f5:9c:af:84:6a:1e:3d:e2:20:8d:cd:29:91:8d:
d3:c5:9a:c3:f3:eb:f5:3a:ee:81:35:fc:df:a9:f2:
09:ef:ca:b2:47:0b:48:bb:66:b2:4d:b4:05:a0:73:
ee:fa:ae:35:1e:1a:65:97:60:07:7d:2a:f5:f9:11:
79:98:4e:d7:a6:a2:23:00:8e:42:08:e7:a6:da:57:
16:72:d5:a2:3d:f8:37:52:fb:34:62:bf:a2:56:8f:
04:85:18:81:dd:32:1c:1f:b1:8a:0b:5c:cd:7c:d3:
26:c0:39:02:9d:c6:9f:9d:b4:bb:48:5d:6f:1d:67:
ce:36:a6:36:bb:cc:33:c2:ca:7e:9a:7d:a0:eb:76:
cf:89:57:c2:bf:06:44:35:05:72:b6:8a:bc:09:34:
99:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:FC:D4:D0:FC:C0:64:A1:F8:63:2F:C4:64:21:5D:15:BD:3C:48:B0
X509v3 Authority Key Identifier:
keyid:F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/1-fzU0PzAZKH4Yy_EZCFdFb08SLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.52.0/23
Signature Algorithm: sha256WithRSAEncryption
65:b8:f6:3b:87:e0:86:0c:7d:82:85:fc:e6:1f:a7:ef:18:ee:
e0:4f:09:8c:be:c1:16:eb:51:ee:14:cb:eb:db:55:af:48:50:
50:a4:ce:c4:81:88:75:ee:d8:76:7d:63:f2:d0:ab:27:38:67:
1f:3e:66:26:3a:e1:4a:25:c5:55:78:f0:fd:b1:bb:a2:e6:b3:
b2:06:7e:09:69:fc:06:0c:f0:6a:a9:67:42:5e:16:49:0d:f0:
c0:d7:3c:64:88:5a:81:da:00:6d:0f:06:38:fd:19:2e:52:6f:
8d:58:ee:68:e5:61:df:46:41:27:d9:b6:48:bd:20:13:f2:0f:
e3:66:4d:a2:de:1b:09:cc:35:d1:f8:8a:63:ac:64:31:d7:f9:
73:b1:dd:35:2a:83:94:01:c9:a4:ce:2a:88:c7:c1:2f:5b:b4:
2c:15:f1:f5:dd:75:3e:99:6d:b6:1b:0c:83:62:b6:66:44:00:
31:44:fd:54:f5:36:8f:d8:e3:62:aa:ee:bf:48:7b:54:8b:de:
82:49:0b:c3:63:5a:83:8d:08:64:06:13:48:ab:7b:ec:06:97:
91:2d:c2:fe:68:72:ff:a5:c3:e7:9d:46:35:fd:89:23:a6:76:
0f:66:8f:70:1f:32:38:d6:7a:43:7e:18:53:88:52:90:c8:1e:
d2:eb:fc:ee
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEGI0H3zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NGU3MTc0YzZmNzRmYTlhMjJiMGFkZWUyNTFhOGQ2NDMxMjMxM2YyMB4XDTIyMDEw
MTE0MDExN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjlmY2Q0ZDBmY2Mw
NjRhMWY4NjMyZmM0NjQyMTVkMTViZDNjNDhiMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhl3DlkBIXRN6iTScaIXM8sTjdYgguJTRhd16b4DG6TUE6T
288kI8xVC9JLlAd3JIfvjbbWiQMJlRO+90t0EvPzaiYXaiwqhUZnBZj1T4KhvEY4
O9Tw8y5yxkLIJlbRojMl96UEYs1ZAvWcr4RqHj3iII3NKZGN08Waw/Pr9TrugTX8
36nyCe/KskcLSLtmsk20BaBz7vquNR4aZZdgB30q9fkReZhO16aiIwCOQgjnptpX
FnLVoj34N1L7NGK/olaPBIUYgd0yHB+xigtczXzTJsA5Ap3Gn520u0hdbx1nzjam
NrvMM8LKfpp9oOt2z4lXwr8GRDUFcraKvAk0mc8CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT5/NTQ/MBkofhjL8RkIV0VvTxIsDAfBgNVHSMEGDAWgBT05xdMb3T6miKw
re4lGo1kMSMT8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlPY1hURzkwLXBvaXNLM3VKUnFOWkRFakVfSS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzYvODZlZmIzLWVmMWUtNDY5Yy1hZWI0LTI4OTc4YzNjN2VjNS8x
LzEtZnpVMFB6QVpLSDRZeV9FWkNGZEZiMDhTTEEucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M2
Lzg2ZWZiMy1lZjFlLTQ2OWMtYWViNC0yODk3OGMzYzdlYzUvMS85T2NYVEc5MC1w
b2lzSzN1SlJxTlpERWpFX0kuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFb6TQwDQYJKoZIhvcNAQELBQAD
ggEBAGW49juH4IYMfYKF/OYfp+8Y7uBPCYy+wRbrUe4Uy+vbVa9IUFCkzsSBiHXu
2HZ9Y/LQqyc4Zx8+ZiY64UolxVV48P2xu6Lms7IGfglp/AYM8GqpZ0JeFkkN8MDX
PGSIWoHaAG0PBjj9GS5Sb41Y7mjlYd9GQSfZtki9IBPyD+NmTaLeGwnMNdH4imOs
ZDHX+XOx3TUqg5QByaTOKojHwS9btCwV8fXddT6ZbbYbDINitmZEADFE/VT1No/Y
42Kq7r9Ie1SL3oJJC8NjWoONCGQGE0ire+wGl5Etwv5ocv+lw+edRjX9iSOmdg9m
j3AfMjjWekN+GFOIUpDIHtLr/O4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:15 2024 by rpki-client on console-fra.rpki-client.org